Microsoft Certificate Services Authority (CA) software can be used to issue digital certificates. These are often used as "proof" that someone or something is what they claim they are. The Microsoft certificates are meant to be used with IIS for example with Outlook Web Access. The users of these certificates have to decide if they trust it or not. If they do, they can import a root certificate into their browsers (IE).Anyways, this search by JimmyNeutron uncovers a few of these certificate servers directly connected to the Internet. Which (in theory) means anyone could issue a certificate from these sites and abuse it to mislead websurfers in phishing scams and such.

Comments:

Our Mission

Picking on charities is just plain rude. Thankfully, that’s not what we’re about. We’re about proving that hackers have amazing skills that can transform charitable organizations.

We’re about stepping into the gap to feed and educate the world’s most vulnerable citizens.